Assigner | OpenText |
Reserved | 2024-04-18 |
Published | 2024-05-15 |
Updated | 2024-06-04 |
Description
Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H |
Problem types
CWE-20 Improper Input Validation
Product status
3.0.0
Credits
Blaine Herro (Yahoo! Inc. VRT)